OdinF13 / Bug-Bounty-Scripts

Related projects: ⓘ

• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆46Updated 7 months ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆37Updated 3 years ago
• ap062 / bba
  bug bounty automation
  ☆12Updated 3 years ago
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆31Updated last year
• vikrantbatra05 / HuntTheBug
  Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…
  ☆48Updated 2 years ago
• MShahine / Bug-Bounty-Recon
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆29Updated 4 years ago
• EasyRecon / wappaGo
  ☆52Updated 4 months ago
• HernanRodriguez1 / ScanReflectedXSS
  ☆44Updated last year
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• projectmonke / shortnameguesser
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆32Updated last year
• Isaac-The-Brave / GF-Patterns-Redux
  ☆15Updated this week
• daffainfo / my-nuclei-templates
  Some contributions in the nuclei-templates repository
  ☆54Updated 2 years ago
• RikunjSindhwad / Task-Ninja-Workflows
  This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja
  ☆22Updated last month
• Sicks3c / Reconizer
  ☆37Updated 3 years ago
• emadshanab / Extract-and-Probe-all-the-ips-associated-with-same-host-via-httpx
  ☆12Updated 2 years ago
• NitinYadav00 / gf-patterns
  Some of the gf patterns which i use
  ☆37Updated 2 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆31Updated 2 years ago
• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆46Updated last year
• honoki / burp-copy-regex-matches
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆33Updated 2 years ago
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated last year
• akshaysharma016 / aem-detector
  ☆21Updated last year
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆55Updated last year
• tr3ss / newclei
  A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.
  ☆54Updated last year
• yeswehack / BCheck-Burp-scripts
  Bcheck scripts for Burp
  ☆24Updated last month
• leetIbrahim / JSNotify
  ☆18Updated 10 months ago
• YazeedOliwah / reconX
  ☆16Updated this week